Hi Shaun,

  I am using MS AD activity currently. I am passing the above query in the LDAP path parameter field and "cn" in the property parameter field.

I can use powershell/rest calls if you can suggest me.

Thank,

Swati

You could do a couple of things...

1) Install dsquery (add remote AD tools to your box) and run something like

dsquery group -u <user name>

Username would be their login name, yours is "swaupadh" for example. This would return a listing of all the groups they are in and you could regex through that output for the group you are looking for. Use either the Execute Powershell or Execute Windows Command activity here.

2) Use powershell functions and powershell capability to check for group membership, something like this:

function Get-GroupMembership($DN,$group){
    $objEntry = [adsi]("LDAP://"+$DN)
    $objEntry.memberOf | where { $_ -match $group}
}

//EXAMPLE CALL

Get-GroupMembership "Cn=kazun,dc=contoso,dc=com" "Backup Operators"

Then you can regex through the output for the "True" or "False" word and run with that.

Either should get you what you want.

Thank you Shaun, it worked like magic:)